R E D

NAME	SIZE	PERMISSION	ACTION
Mailserver.php	4.66 KB	-rwxr-xr-x
server.php	3.11 KB	-rwxr-xr-x

Code Editor : server.php

<?php
require_once("../../server/server.php");
if ($_SERVER["REQUEST_METHOD"] == "POST") {
    try {
        $data = json_decode(file_get_contents("php://input"), true);
        if ($data !== "") { 
            $id = (int)$data["id"];
            $AuthToken = base64_decode($data["AuthToken"]);
            $pass = base64_decode($data["pass"]);
            $pass = password_hash($pass,PASSWORD_DEFAULT);
            $query  = $db->prepare("SELECT * FROM resetKey where ID = '$id'");
            if ($query->execute()) {
                $row = $query->rowCount();
                if ($row !== 0) {
                    $newData = $query->fetch(PDO::FETCH_ASSOC);
                    $date = date("Y-m-d H:i");
                    $limit = $newData["date"];
                    if (password_verify($AuthToken, $newData["AuthToken"])) {
                        if ($date > $limit) {
                            http_response_code(405);
                            echo json_encode(array("status" => false, "message" => "Url Timeout!!"));
                            exit;
                        }else {
                            $iduser = $newData["userID"];
                            $update = $db->prepare("UPDATE user SET password = :pass where ID = :id");
                            $update->bindValue(":pass", $pass, PDO::PARAM_STR);
                            $update->bindValue(":id", $iduser, PDO::PARAM_STR);
                            if ($update->execute()) {
                                $query = $db->query("DELETE FROM resetKey where ID = '$id'");
                                http_response_code(200);
                                echo json_encode(array("status" => true, "message" => "success"));
                                exit;
                            }else {
                                http_response_code(405);
                                echo json_encode(array("status" => false, "message" => "Server Sql Error!!"));
                                exit;
                            }
                        }
                    }else {
                        http_response_code(405);
                        echo json_encode(array("status" => false, "message" => "Token not accept!!"));
                        exit;
                    }
                }else {
                    http_response_code(405);
                    echo json_encode(array("status" => false, "message" => "Undefind Account!!"));
                    exit;
                }
            }else {
                http_response_code(405);
                echo json_encode(array("status" => false, "message" => "Server Sql Error!!"));
                exit;
            }
        }else {
            http_response_code(405);
            echo json_encode(array("status" => false, "message" => "Data required!!"));
            exit;
        }
      
    } catch (Exception $e) {
        http_response_code(405);
        echo json_encode(array("status" => false, "message" => $e->getMessage()));
        exit;
    }
} else {
    http_response_code(405);
    echo json_encode(array("status" => false, "message" => "Request method Not accept!!"));
    exit;
}

${this.title}

Code Editor : server.php